Overview

overview

10

Static

static

10

KbSetup.exe

windows7-x64

10

KbSetup.exe

windows10-2004-x64

10

Resubmissions

19/12/2022, 01:31

221219-bxlr9sha5v 10

19/12/2022, 01:31

221219-bxhevaea64 10

19/12/2022, 01:24

221219-bsdabsha4x 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    KbSetup.exe

  • Size

    63KB

  • MD5

    781bd32997cb871ab30fb3f303d45cab

  • SHA1

    e5ee1113eb5e3eeb112666e6ae31fd730c46c15e

  • SHA256

    efb5f3b0881e717089934912881bcdb63874e66a00ba2250a845827e2ac40ff7

  • SHA512

    4c32eedb56eddc30cdd7fc88f39d7f0ec765b3235eb38ac87920624c5cfd93bc4078857cc427a52d7ef5950e8c5508d602b9c819dfc32705ab4197ff27776726

  • SSDEEP

    1536:QhW5hc1kw0kVqq1oWN6WHtbbTwlqtMkNGODpqKmY7:QhW5hc1kWVqq1ftbbTAqtMggz

Score
10/10
ratvenom clientsasyncrat

Malware Config

Extracted

Family

asyncrat

Version

5.0.5

Botnet

Venom Clients

C2

dtbvira.zapto.org:5200

Mutex

Venom_RAT_HVNC_Mutex_Venom RAT_HVNC

Attributes
  • delay

    1

  • install

    true

  • install_file

    svchost.exe

  • install_folder

    %AppData%

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat

Files

  • KbSetup.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections